Senior Application Security Engineer

Bittrex, the leading blockchain technology provider and cryptocurrency exchange, is hiring a Senior Application Security Engineer! We are looking for talented individuals that will help us push the boundaries of blockchain technology and drive innovation within the industry. If this sounds like you, we would love to have you join our rapidly growing team.

The Bittrex Security team is looking for someone to lead the design and build of secure applications and infrastructure. The scope of the role is broad; you will be taking a critical role ensuring the quality of architecture and design of Bittrex’s trading platform, helping establish technical standards and processes to write secure programs, defining security requirements for critical infrastructure, as well as solving new and emerging security challenges in the cutting-edge blockchain financial industry.

The successful candidate will have a good mix of deep technical knowledge and a demonstrated background in information security. We value broad and deep technical knowledge, specifically in the fields of application security for cryptography, application, operating systems, cloud systems, web and mobile applications, blockchain systems, cryptocurrency wallets, and emergent security intelligence.

Responsibilities:

Partner with development and operations on designing and building secure applications and infrastructure for critical Bittrex web, mobile blockchain systems as well as corporate systems.

Design and implement an application security program.

Audit source code and implement secure coding practice.

Create threat models and security advisory for projects across the organizations.

Understand security vulnerabilities and provide relevant technical guidance for the development team.

Design and implement a DevSecOps program with input from the Information Security and Development teams.

Recognize, adopt and install the best practices in application security fields throughout the organization: leadership, development, support, network infrastructure, policy, compliance and PR.

Communicate effectively at multiple levels of sensitivity, and multiple audiences.

Requirements:

7+ years of relevant, broad engineering experience in information security.

3+ years of experience on an Application Security team, especially in providing high-quality threat models and auditing source code.